CVE-2008-6006

Name of the Vulnerable Software and Affected Versions Micronation Banking System version 1.5.0

Description The issue allows remote attackers to execute arbitrary PHP code. This is achieved by providing a URL in the minsoft path parameter to specific API endpoints, such as "utdb access.php" and "utgn message.php" in the utility/ directory.

Recommendations For Micronation Banking System version 1.5.0, consider restricting access to the utdb access.php and utgn message.php files in the utility/ directory until a patch is available. Avoid using the minsoft path parameter in these API endpoints to minimize the risk of exploitation.